IT Brief UK - Technology news for CIOs & IT decision-makers
United Kingdom

Guides

#
artificial intelligence
#
digital transformation
#
disaster recovery
#
hybrid & remote work
#
internet of things

Search

Moody night corporate tower swoosh architecture massive data breach
#
Firewalls
#
Data Protection
#
Ransomware

Nike probes suspected cyberattack & huge data leak

Wed, 28th Jan 2026
Author image
By Shannon Williams, News Editor

Nike is investigating a suspected cyberattack after a hacker group claimed to have leaked 1.4 terabytes of internal data, in a case that security specialists say highlights growing risks around supply chains and business-critical information.

The group calling itself WorldLeaks has asserted that the haul includes research and development files, manufacturing data and employee information. Nike has not confirmed the scope or authenticity of the alleged leak, but the incident has already prompted warnings from security experts about the wider exposure of operational and partner data.

Data exposure

Analysts said the reported size and nature of the data involved reflects a pattern in which attacks on household-name brands extend beyond customer databases into core business functions.

"Nike's suspected attack shows how quickly a cyber incident becomes a data issue. When attackers claim access to terabytes of internal information, the immediate concern is for operational disruption, but this is rapidly superseded by privacy concerns, with sensitive business and partner data potentially being exposed," said Shankar Haridas, Head of UKI, ManageEngine.

Haridas said attackers increasingly target information that can affect long-term competition and collaboration rather than only retail-facing records.

"For large brands, the risk rarely stops at customer records. Product roadmaps, supplier contracts, pricing models and internal comms are often just as valuable to attackers. A leak of this scale can create long-term competitive and reputational damage, even before the facts are fully confirmed," said Haridas.

Supply chain focus

The WorldLeaks claim has also drawn attention to the way cybercriminals look for leverage inside global manufacturing and logistics networks. Nike relies on a distributed production and supplier base, similar to many large consumer and apparel groups, which increases the number of potential access points for intruders.

Matt Hull, Global Head of Threat Intelligence at NCC Group, said the nature of the data reportedly taken reflects this trend across supply chains.

"What's notable about the Nike data breach isn't just that a global brand may have been compromised, which is becoming familiar, but what was allegedly taken by WorldLeaks. The apparent focus on R&D, manufacturing and employee data underscores how supply chain vulnerabilities have become a primary target for cyber criminals. Access to this type of information gives criminals leverage beyond customer data, exposing how products are designed, built and shipped across complex ecosystems.

"The possible exposure of operational and supply chain data raises broad concerns about resilience, visibility and third-party risk management. Global brands increasingly rely on vast ecosystems and supplier networks, and because of this, attackers are exploiting their weakest points. The potential Nike breach reinforces the need for supply chain security to be treated as a core business risk. Recent NCC Group research revealed that 68% of organizations expect the severity and scale of attacks on supply chains to rise, so it's vital that they receive the same level of scrutiny, investment and accountability as internal operations," said Hull.

Beyond the perimeter

Security specialists say incidents involving large consumer brands show how business data now sits across cloud platforms, outsourced services and partner systems. That increases the impact when attackers gain a foothold in any part of the network.

"Data breaches now move well beyond the perimeter of a single organisation. Access is shared across suppliers, platforms and wholesale partners, increasing the blast radius when something goes wrong. Security strategies have to reflect that reality, with tighter control over data access, continuous monitoring and faster visibility when unusual behaviour appears," said Haridas.

He added that containment of intrusions depends on limiting the amount of information exposed during any compromise.

"Limiting how far attackers can see and how much they can take makes a critical difference," said Haridas.

Related stories
Hackers ditch noisy ransomware for stealthy data theft
SmarterMail flaw exploited in China-linked ransomware push
Percona maps 2026 growth with new tech & leadership
PowerX unveils AI tool to automate tower maintenance
Wordly launches Workspaces for everyday AI translation

Top stories

Kyndryl unveils policy-as-code guardrails for AI agents
Genetec adds case investigation tools to Security Centre SaaS
CodeRabbit unveils Issue Planner to sharpen AI briefs
Calero unveils AI assistant for telecom invoice insight
Qlik rolls out governed agentic AI & MCP for Qlik Cloud